Search the archives!
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Full-disclosure] Advisory: Redirection Bug In Feeds.MSN
- From: contact at metaeye.org (Metaeye)
- Subject: [Full-disclosure] Advisory: Redirection Bug In Feeds.MSN
- Date: Tue, 28 Nov 2006 13:51:55 +0530
Vendor: MSN Severity: Critical Dated: 20 November 2006 Explanation: The feeds.msn website possesses a typical redirection vulnerability. The attacker can manipulate this vulnerability to leverage third party attacks. The traffic can be redirected to the desired destination of attacker's choice. Website: http://feeds.msn.com/content/ca/framesite/frmredir.asp?m=<url> You can check the redirection http://feeds.msn.com/content/ca/framesite/frmredir.asp?m=www.google.com"; Vendor Status: Reported. No Response. Not patched. -- MSG http://www.metaeye.org
- Prev by Date: [Full-disclosure] Nmap Online
- Next by Date: [Full-disclosure] ProFTPD mod_tls pre-authentication buffer overflow
- Previous by thread: [Full-disclosure] Nmap Online
- Next by thread: [Full-disclosure] ProFTPD mod_tls pre-authentication buffer overflow
- Index(es):